IT and Cybersecurity Risk Officer

He/She will integrate a team of Risk and BCM expert and can leverage on their expertise and knowledge of the organisation.

He/She will contribute in implementing the company’s policies and ensuring the consistency of the Risk Management Framework, such as:

- support in identifying and documenting with the business and the local coordinators (located in the operational teams, first line of defense) the various risks the company may face
- participate in risk review on strategic or important project, as well as on third party providers
- support on developing risk profiles and key risk indicators
- Preparing risk report
- support in promoting Risk across the group: providing training materials and performing awareness sessions to key stakeholders, supporting local coordinators in their group guidelines implementation
- participate to GRC tool enhancement (benchmark of new tools leading to potential new tool deployment, updating internal powerBI dashboard )

In addition, he/she will also be supporting Business Continuity Management enhancement in the group by
- consolidating and challenging BCM documentation provided by local BCM coordinators, mainly on the IT and cybersecurity department, with a specific focus on Disaster Recovery procedure and Business Continuity Plan to respond to IT and Cybersecurity scenario (unavalaibility of datacenter, ransomware attack )
- aligning Business Continuity Management deliverables with IT practise to ensure building an coherent and synchronised approach in terms of critical asset and resiliency test.
- participate to group crisis exercise & follow remediation plan

Within the Risk & Compliance department, a team of more than 40 talented professionals in Risk, BCM, Internal Control and Compliance, spread across our various geographies, is ensuring to preserve the value assets and reputation of the company. Identifying and assessing risks, implementing mitigation actions, informing and raising staff and business awareness, monitoring and ensuring compliance with the appropriate regulations are the core activities embedded in our team.

In this department, Operational Risk & Business Continuity Management team is covering the second line of defense function on Risk for IT, Cybersecurity, HR, Procurement and other transversal departments, as well as maintaining the appropriate Business Continuity maturity in the group. The stakeholders are located in all Euronext entities (Paris, Porto, Milan, Oslo, New York, Dublin, Copenhagen ).

He/She will integrate a team of Risk and BCM expert and can leverage on their expertise and knowledge of the organisation.

He/She will contribute in implementing the company’s policies and ensuring the consistency of the Risk Management Framework, such as:

- support in identifying and documenting with the business and the local coordinators (located in the operational teams, first line of defense) the various risks the company may face
- participate in risk review on strategic or important project, as well as on third party providers
- support on developing risk profiles and key risk indicators
- Preparing risk report
- support in promoting Risk across the group: providing training materials and performing awareness sessions to key stakeholders, supporting local coordinators in their group guidelines implementation
- participate to GRC tool enhancement (benchmark of new tools leading to potential new tool deployment, updating internal powerBI dashboard )

In addition, he/she will also be supporting Business Continuity Management enhancement in the group by
- consolidating and challenging BCM documentation provided by local BCM coordinators, mainly on the IT and cybersecurity department, with a specific focus on Disaster Recovery procedure and Business Continuity Plan to respond to IT and Cybersecurity scenario (unavalaibility of datacenter, ransomware attack )
- aligning Business Continuity Management deliverables with IT practise to ensure building an coherent and synchronised approach in terms of critical asset and resiliency test.
- participate to group crisis exercise & follow remediation plan

Key accountabilities
- Coordinate risk management works for IT and InfoSec departments, supporting in assessing and managing the risk with key stakeholders in the departments.
- Review and advise on the internal security practices with industry best practices and security frameworks commensurate with strategy and the expectations of our clients and regulators. The implementation is made by the cybersecurity teams.
- Produce risk profile and report on the second line of defence opinion on cybersecurity risk and cybersecurity and IT governance model, presenting these to senior managers as required.
- Assist in the development, management and monitoring of IT and cybersecurity key risk indicators across Euronext
- Support the team to align BCM and IT/Cybersecurity processes (risk scenario to cover, critical asset database, recover testing strategy )
-